Genel Bakış

INC Ransom, agresif çifte şantaj yapar.

MalwareBazaar İstihbarat Verileri

Hash Örnekleri (İlk 50)

SHA256MD5İlk GörülmeTipBoyut
e16ac4475e24bbe97e50... 8c00feb53759f3ee... 2025-08-05 elf 79.446
6cd349eda0fa6c8b274a... 03dd0efa84d145d7... 2025-08-05 elf 870.920
63e0d4e861048f581c9e... 2a404aadbcf8ff04... 2025-01-24 elf 84.400
7d0c735c8b5bddf57772... f7b88181d14dc0be... 2024-11-20 elf 84.400
c41ab33986921c812c51... c6cdd8f334058662... 2024-06-11 elf 84.400

IOC Özeti

  • Bu analiz 5 adet benzersiz INCRansom örneğini kapsar.
  • Toplam 10 hash IOC kayıt altına alındı.
  • Kampanya aktivitesi: 2024-06-11 ile 2025-08-05 arasında tespit edildi.

INCRansom — Malware Profile

INC Ransom, agresif çifte şantaj yapar.

Malware Type
Ransomware
Programming Language
C++
C2 Protocol
Target Systems
Windows

Capabilities & Behavior

Dosya Şifreleme (AES/RSA)
Gölge Kopya Silme
Yedek Kaldırma
Fidye Notu Oluşturma
Kalıcılık Sağlama
Ağ Paylaşımı Şifreleme
Anti-Analiz Teknikleri
Çift Gasp (Data Leak)

IOC List (20 indicators)

IOC — INCRansom
# SHA256 e16ac4475e24bbe97e50d7940df71079ea2f1dfd1f2bff6a649c09f7503d087c # SHA256 6cd349eda0fa6c8b274a0920852c68f8b727afea1fdbc69ad183cef05d9cf141 # SHA256 63e0d4e861048f581c9e5c64b28a053eb0023d58eebf2b943868d5f68a67a8b7 # SHA256 7d0c735c8b5bddf577727cdb7d10cb94e2de8d945d2653af6153f9ecb4479384 # SHA256 c41ab33986921c812c51e7a86bd3fd0691f5bba925fae612f1b717afaa2fe0ef # SHA256 e16ac4475e24bbe97e50d7940df71079ea2f1dfd1f2bff6a649c09f7503d087c # SHA256 6cd349eda0fa6c8b274a0920852c68f8b727afea1fdbc69ad183cef05d9cf141 # SHA256 63e0d4e861048f581c9e5c64b28a053eb0023d58eebf2b943868d5f68a67a8b7 # SHA256 7d0c735c8b5bddf577727cdb7d10cb94e2de8d945d2653af6153f9ecb4479384 # SHA256 c41ab33986921c812c51e7a86bd3fd0691f5bba925fae612f1b717afaa2fe0ef # MD5 8c00feb53759f3ee4f3cdce0c70b431c # MD5 03dd0efa84d145d7d4ed8e240267e5c5 # MD5 2a404aadbcf8ff04b43db1da12a6dd80 # MD5 f7b88181d14dc0becf350844728f67df # MD5 c6cdd8f3340586620e663236141dc013 # MD5 8c00feb53759f3ee4f3cdce0c70b431c # MD5 03dd0efa84d145d7d4ed8e240267e5c5 # MD5 2a404aadbcf8ff04b43db1da12a6dd80 # MD5 f7b88181d14dc0becf350844728f67df # MD5 c6cdd8f3340586620e663236141dc013
TypeValueNote
sha256 e16ac4475e24bbe97e50d7940df71079ea2f1dfd1f2bff6a649c09f7503d087c MB:INCRansom
sha256 6cd349eda0fa6c8b274a0920852c68f8b727afea1fdbc69ad183cef05d9cf141 MB:INCRansom
sha256 63e0d4e861048f581c9e5c64b28a053eb0023d58eebf2b943868d5f68a67a8b7 MB:INCRansom
sha256 7d0c735c8b5bddf577727cdb7d10cb94e2de8d945d2653af6153f9ecb4479384 MB:INCRansom
sha256 c41ab33986921c812c51e7a86bd3fd0691f5bba925fae612f1b717afaa2fe0ef MB:INCRansom
sha256 e16ac4475e24bbe97e50d7940df71079ea2f1dfd1f2bff6a649c09f7503d087c MB:INCRansom
sha256 6cd349eda0fa6c8b274a0920852c68f8b727afea1fdbc69ad183cef05d9cf141 MB:INCRansom
sha256 63e0d4e861048f581c9e5c64b28a053eb0023d58eebf2b943868d5f68a67a8b7 MB:INCRansom
sha256 7d0c735c8b5bddf577727cdb7d10cb94e2de8d945d2653af6153f9ecb4479384 MB:INCRansom
sha256 c41ab33986921c812c51e7a86bd3fd0691f5bba925fae612f1b717afaa2fe0ef MB:INCRansom
md5 8c00feb53759f3ee4f3cdce0c70b431c MB:INCRansom
md5 03dd0efa84d145d7d4ed8e240267e5c5 MB:INCRansom
md5 2a404aadbcf8ff04b43db1da12a6dd80 MB:INCRansom
md5 f7b88181d14dc0becf350844728f67df MB:INCRansom
md5 c6cdd8f3340586620e663236141dc013 MB:INCRansom
md5 8c00feb53759f3ee4f3cdce0c70b431c MB:INCRansom
md5 03dd0efa84d145d7d4ed8e240267e5c5 MB:INCRansom
md5 2a404aadbcf8ff04b43db1da12a6dd80 MB:INCRansom
md5 f7b88181d14dc0becf350844728f67df MB:INCRansom
md5 c6cdd8f3340586620e663236141dc013 MB:INCRansom
Tags
bulkiocmalwarebazaarransomwareincransom